summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Bug 16633: Quick hack to test prediction with proxy settings.bug16633-sketchMike Perry2015-07-21
| | | | Untested.
* fixup! Omnibox: Add DDG, Startpage, Disconnect, Youtube, Twitter; remove ↵Arthur Edelstein2015-07-18
| | | | Amazon, eBay, bing
* fixup! TB4: Tor Browser's Firefox preference overrides.Mike Perry2015-07-18
| | | | Disable the old version of webide as well (since it is still supported).
* Bug 16316: Fix New Tiles pref bustage.Mike Perry2015-07-18
| | | | | This allows us to set the newtiles pref to 'classic' mode for the default value.
* fixup! TB4: Tor Browser's Firefox preference overrides.Mike Perry2015-07-18
| | | | Bug #16316: Set the fetch URLs to blank data URIs.
* fixup! TB4: Tor Browser's Firefox preference overrides.Mike Perry2015-07-06
| | | | Bug #16510: Remove "Share this page" from toolbar.
* fixup! Bug #2176: Rebrand Firefox to TorBrowserKathy Brade2015-07-03
| | | | | | Our app display name, "Tor Browser", was truncated to "Tor" within Windows resources (FileDescription, InternalName, and ProductName fields). Fixed by adding quotes around parameters passed to the version_win.pl program.
* fixup! TB3: Tor Browser's official .mozconfigs.Georg Koppen2015-07-02
| | | | Remove old .mozconfig cruft
* Bug #16315: Test spoofed media queries in picture elementsArthur Edelstein2015-06-29
|
* fixup! Bug 15646: Prevent keyboard layout fingerprinting in KeyboardEventGeorg Koppen2015-06-27
|
* Bug #13670.1: Isolate favicon requests by first partyArthur Edelstein2015-06-26
|
* Bug 15646: Prevent keyboard layout fingerprinting in KeyboardEventArthur Edelstein2015-06-26
|
* Bug #16005: Relax minimal mode.Mike Perry2015-06-26
| | | | Use min values from a 2013 Moto E and a 2009 laptop with integrated graphics.
* Bug 16300: Isolate Broadcast Channels to first party.Kathy Brade2015-06-26
| | | | | | Note that when the privacy.thirdparty.isolate pref. is set to 1 or 2, we disable use of Broadcast Channels by SharedWorkers since we cannot obtain the isolation host.
* Bug 16439: remove screencasting code.Kathy Brade2015-06-26
| | | | | | | Screencasting is disabled in desktop browsers because browser.casting.enabled = false. However, to avoid including code that could lead to proxy bypass, we exclude the related JS modules from Tor Browser.
* Bug 16285: Disabling EME bitsArthur Edelstein2015-06-26
| | | | | | | Disabling the EME related preferences is currently more a user interface/ possible user irritation related thing: On Windows no GMPs are downloaded at all as the aus4 server does not know about our mingw-w64 build. And on Linux and OS X there is no EME CDM yet.
* Bug 1057908 - GeckoMediaPluginService needs to be proxied from Content ↵Peter Van der Beken2015-06-26
| | | | | | | processes to parent process. Add nsServiceManagerUtils.h include to WMFDecoderModule.cpp. --HG-- extra : rebase_source : 4285384ce5c38bd296ba065adf4f057c5e12dced
* Bug 16206: Enforce certificate pinningGeorg Koppen2015-06-26
|
* Bug 15910: Disable GMPs for nowGeorg Koppen2015-06-26
| | | | | | | | | | | | Until there are GMPs that can get built reproducible AND whose source code is inspectable we disable the underlying install and update mechanisms. We can't use OpenH264 and Adobe's CDM in Tor Browser anyway as the former is currently only used for WebRTC which we disable for content and the latter is neither available for Linux nor OS X and does not run on Windows as we can't compile the sandbox for it yet which is a hard requirement.
* Bug 16351: Upgrade our toolchain (Binutils/GCC)Georg Koppen2015-06-26
| | | | | | Upgrading to GCC 5.1.0 is hitting an NSS version detection bug (see: https://bugzilla.mozilla.org/show_bug.cgi?id=1167200. This patch is the backport of Jacek's not yet landed one.
* Bug 918827 - Remove caching for ftp connections. r=michalDragana Damjanovic2015-06-26
| | | | | | | --HG-- extra : amend_source : 2e31431e4227fdf3f88d31a8efa14aab8e793cd2 This is actually bug 913827.
* Bug 1151345 - Firefox app menu sometimes contains only "Quit" on OS X. r=spohlSteven Michaud2015-06-26
|
* bug 1183967 - fixup correct case of mfidl.hTrevor Saunders2015-06-26
|
* Bug 1133689 - Make D3DVsyncDisplay destructor private. r=jmuizelaarJacek Caban2015-06-26
|
* Don't package things we don't buildGeorg Koppen2015-06-26
| | | | | | We are not building the uninstall helper.exe for Windows (#9387) and omit ICU on Windows as well (#13419). We avoid packaging the respective binaries then as not doing this breaks our builds.
* Bug 13900: Remove 3rd party HTTP auth tokens.Kathy Brade2015-06-26
| | | | | | | | Prevent user tracking via HTTP Basic Authentication by removing Authorization headers from third party requests. This is a port of a piece of the Stanford SafeCache code that previously was included in Torbutton.
* Bug #15502, Part 2: Regression tests for blob URL isolationArthur Edelstein2015-06-26
|
* Bug #15502. Isolate blob URLs to first party; no blobURLs in Web WorkersArthur Edelstein2015-06-26
|
* Bug 13670.2: Isolate OCSP requests by first party domainArthur Edelstein2015-06-26
|
* Bug #13749.1: regression tests for first party isolation of localStorageArthur Edelstein2015-06-26
|
* Bug #13749.2: Regression tests for first-party isolation of cacheArthur Edelstein2015-06-26
| | | | | | | | | | | | | This test ensures that if first-party isolation is enabled ("privacy.thirdparty.isolate" pref is set to 2) then when a loaded file is cached, it is indexed by the URL-bar domain. In this test, a number of files are loaded (via IFRAME, LINK, SCRIPT, IMG, OBJECT, EMBED, AUDIO, VIDEO, TRACK and XMLHttpRequest) by parent pages with different URL bar domains. When isolation is active, we test to confirm that a separate copy of each file is cached for each different parent domain. We also test to make sure that when isolation is inactive, a single copy of the child page is cached and reused for all parent domains.
* Bug #6564: Isolate DOM storage to first party URI.Kathy Brade2015-06-26
| | | | Also prevent DOM storage from ever writing to disk.
* Bug #6539: Isolate the Image Cache per url bar domain.Kathy Brade2015-06-26
| | | | | The image cache maintains its own table outside of the main cache, and does not obey cacheKeys by default.
* Bug 13742: Isolate cache to URL bar domain.Mike Perry2015-06-26
|
* Bug #10819: Add a pref, "privacy.thirdparty.isolate", to allow the ↵Arthur Edelstein2015-06-26
| | | | activation or deactivation of isolating DOM storage and image caching by first party URI.
* Bug #5742: API allows you to get the url bar URI for a channel or nsIDocument.Mike Perry2015-06-26
| | | | Logs the URI of the source doc/channel that failed.
* Bug 13379: Sign our MAR files.Kathy Brade2015-06-26
| | | | | | | | | | | | | | | | | | Replace Mozilla's MAR signing certificates with our own. Configure with --enable-signmar (build the signmar tool). Configure with --enable-verify-mar (when updating, require a valid signature on the MAR file before it is applied). Use the Tor Browser version instead of the Firefox version inside the MAR file info block (necessary to prevent downgrade attacks). Use NSS on all platforms for checking MAR signatures (Mozilla plans to use OS-native APIs on Mac OS and they already do so on Windows). So that the NSS and NSPR libraries the updater depends on can be found at runtime, we add the firefox directory to the shared library search path on all platforms. Use SHA512-based MAR signatures instead of the SHA1-based ones that Mozilla uses. This is implemented inside MAR_USE_SHA512_RSA_SIG #ifdef's and with a signature algorithm ID of 512 to help avoid collisions with future work Mozilla might do in this area. See: https://bugzilla.mozilla.org/show_bug.cgi?id=1105689
* Bug 1158866 - Enable MAR verification on linux via NSS. r=rstrongBrian R. Bondy2015-06-26
|
* Bug 973933 - Fix libmar warnings. r=rstrong. a=CallekBrian R. Bondy2015-06-26
| | | | | --HG-- extra : amend_source : 27417e9f4e775cded600fae95f17faad4bb73b47
* Bug 973933 - Fix Nightly builds failing on updater-xpcshell. r=rstrongBrian R. Bondy2015-06-26
|
* Bug 973933 - Temporarily disable Linux for MAR verification. r=rstrongBrian R. Bondy2015-06-26
| | | | | Conflicts: browser/confvars.sh
* Bug 973933 - Fix mochitest chrome updater tests. r=rstrongBrian R. Bondy2015-06-26
| | | | | Conflicts: toolkit/mozapps/update/tests/chrome/utils.js
* Bug 973933 - New updater-xpcshell binary for updater tests. r=rstrongBrian R. Bondy2015-06-26
| | | | | | | | | | | | | | | | | This is a rollup of recent work. Changes include: - Creating an xpcshell only updater binary. This binary has an embedded xpcshell only cert for verifying test only mars. It is only used by tests and is not signed w/ authenticode certs. - Modifying tests to use that new binary - Adding a check-cert option to the maintenance service - Using that new cert-check option in new tests to test the authenticode path - No longer doing an authenticode check during service updater tests on the xpcshell binary. - Enables more tests for other platforms --HG-- rename : toolkit/mozapps/update/updater/moz.build => toolkit/mozapps/update/updater/updater-common.build Conflicts: toolkit/mozapps/update/tests/data/xpcshellUtilsAUS.js toolkit/mozapps/update/tests/unit_base_updater/xpcshell.ini
* Bug 991993: Disable NSS for updater on OSX and enable native APIs. ↵Stephen Pohl2015-06-26
| | | | r=smichaud,rstrong
* Bug 903126 - Replace DER file with XPCShell cert. r=rstrongBrian R. Bondy2015-06-26
|
* Bug 903126 - Don't use an xpcshell cert for verification. r=rstrongBrian R. Bondy2015-06-26
|
* Bug 903135 - Multi platform MAR verification updater support. r=rstrongBrian R. Bondy2015-06-26
|
* Bug 903135 - Multi platform MAR verification build config. r=rstrongBrian R. Bondy2015-06-26
| | | | | Conflicts: browser/confvars.sh
* Bug 903135 - Updates to libmar needed to support B2G MAR signature ↵Brian Smith2015-06-26
| | | | verification. r=bbondy
* Bug #4234: Use the Firefox Update Process for Tor Browser.Kathy Brade2015-06-26
| | | | | | | | | | | | | | | | | | New configure options: --with-tor-browser-version=VERSION # Pass TB version throughout build. --enable-tor-browser-update # Enable bundle update behavior. The following files are never updated: TorBrowser/Data/Browser/profiles.ini TorBrowser/Data/Browser/profile.default/bookmarks.html TorBrowser/Data/Tor/torrc Mac OS: Store update metadata under TorBrowser/UpdateInfo. Removed the %OS_VERSION% component from the update URL (13047) and added support for minSupportedOSVersion, an attribute of the <update> element that may be used to trigger Firefox's "unsupported platform" behavior. Windows: disable "runas" code path in updater (15201). Also includes fixes for tickets 13047, 13301, 13356, 13594, 15406, and 16014.
generated by cgit v1.2.1 (git 2.18.0) at 2024-02-02 09:44:59 +0000